$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft File: XqEcijop4GlzwfEhYR1aXCobBp0.mft (raw, json) Hash identifier: lpRNipKcz5Ip7orNPmg6pTpqIkZm4yb3wcsMKRWBfXI= Subject key identifier: 42:21:0C:BC:6E:92:41:E9:59:B6:07:9C:A1:FF:03:EB:EA:D4:B4:E1 Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D Certificate issuer: /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Certificate serial: 079D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft Manifest number: 076E Signing time: Sat 18 Oct 2025 23:04:58 +0000 Manifest this update: Sat 18 Oct 2025 23:04:58 +0000 Manifest next update: Sat 25 Oct 2025 23:04:58 +0000 Files and hashes: 1: XqEcijop4GlzwfEhYR1aXCobBp0.crl (hash: TVRIiKcZaozxxB2SI9nJrP7+mOvmyayJS8Sj3nnMQUU=) 2: 66FC64186D0711F0AC1BE951C4F9AE02.roa (hash: hWwF88GIP3tV+NyMDvSvQLm3VEbfDC65iFXo9VhwYUk=) 3: 5A51D464F5FA11EC9B35372AC4F9AE02.roa (hash: xKqf+n8kgniX6QnefZ1ax3dHrgOYPyD34X8HXDWa04o=) 4: 94A5320663A111F092E32646C4F9AE02.roa (hash: O5r2+wXt4zH6hxOJA3sUCrB8yg9bHS1XDEYPpgUx1XQ=) 5: 0940732E0E6311EDB98DEA0DC4F9AE02.roa (hash: LjX/y1bmr7lUb6+mhBpoHtfDQ+zCLBR7g1pGcdMOf00=) 6: 0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa (hash: SGNPZCwfC0xAo0xM/Ak76M8pbN3zzIxkj9O1xC+I8EU=) 7: 9507206A63A111F092E32646C4F9AE02.roa (hash: rAuvyeznobZzFQMS0Fgkc4tf80FkzwtmDY5jMNACHCg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:04:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1949 (0x79d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A654C, serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Validity Not Before: Oct 18 23:04:58 2025 GMT Not After : Oct 25 23:04:58 2025 GMT Subject: CN=68f41d1a-3239 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:42:38:ce:1f:d2:ed:86:01:68:3b:8d:cf:52: 7c:13:42:e8:f1:dd:e3:4d:d8:d0:86:f7:40:4b:13: a9:87:a5:f6:a1:7e:a9:d3:1a:94:45:94:b9:fa:0b: b6:de:3a:4f:db:31:11:fc:e8:32:42:46:ef:66:e6: 41:84:0d:10:82:7c:bb:d9:d2:88:f3:b1:0a:6a:b6: 63:f7:45:cb:9a:3c:af:17:91:a4:ba:83:26:ff:0a: 37:68:8e:51:ef:17:a3:79:bb:66:ff:8a:56:c5:b0: a7:85:50:a3:52:d6:84:4b:45:43:44:47:3f:65:0f: 56:fd:06:df:9f:e7:66:1a:f8:62:fe:a5:97:96:13: fd:75:83:a1:5a:23:29:09:66:3b:ee:5a:c3:e9:91: 9f:20:d5:b8:ee:41:d1:c2:66:85:81:bb:48:50:72: 50:a7:ef:26:50:87:4f:7f:7f:0a:c4:f2:9a:1d:75: a3:68:c5:20:3a:09:c9:9d:ce:12:c0:1e:bd:9f:c0: 9e:92:92:a9:a0:a6:34:7f:d6:ad:c0:0b:ef:b2:07: 21:60:09:ba:5c:3b:89:f3:7d:71:43:08:55:db:0b: ea:e1:94:d2:f7:4e:2a:16:fe:7f:37:38:3c:8b:d9: dd:2b:21:09:31:47:4e:df:c2:9a:28:7d:83:11:86: ce:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:21:0C:BC:6E:92:41:E9:59:B6:07:9C:A1:FF:03:EB:EA:D4:B4:E1 X509v3 Authority Key Identifier: keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:77:5b:bc:3f:05:b9:09:9c:8d:17:b1:ed:39:e2:91:c1:7c: a5:ec:6d:f8:ba:5e:5a:f3:13:e8:81:ea:12:25:3d:4a:93:e1: 4e:d7:6a:13:5d:aa:72:7e:62:71:3a:7b:09:cd:48:eb:31:0e: c7:5a:bb:b4:65:32:fe:2f:52:46:07:f5:15:ff:ad:1c:c2:c0: 97:82:7b:0d:1f:42:64:8a:44:c3:5b:78:4e:f7:13:1c:35:dd: 43:5d:63:f7:78:ef:37:3e:53:df:59:7b:a0:bf:bb:da:7e:b4: 53:9e:af:8e:1a:06:df:16:9d:2f:4e:fa:93:fd:52:28:70:2f: 98:d0:64:a4:be:4d:30:eb:7d:22:b5:4a:f1:f7:57:1e:57:65: 00:40:e1:5e:4e:51:96:66:47:44:e3:31:56:aa:09:23:26:01: 08:ab:2e:e3:13:3b:b8:0a:34:09:3c:81:f7:a3:1a:fc:e3:53: ec:90:cf:61:96:bd:cd:82:0d:b0:ec:95:42:0e:44:a5:86:02: 8c:1b:08:d1:67:33:a1:b5:81:35:db:7f:a5:ba:95:a9:ea:36: 17:fd:67:64:a3:b4:5e:64:3a:18:d6:96:7d:cb:97:92:05:eb: aa:83:06:8a:ea:41:a6:01:ac:40:d2:93:cf:d4:0a:58:de:52: a2:c4:5f:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB50wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NEMxMTAvBgNVBAUTKDVFQTExQzhBM0EyOUUwNjk3M0MxRjEyMTYxMUQ1QTVD MkExQjA2OUQwHhcNMjUxMDE4MjMwNDU4WhcNMjUxMDI1MjMwNDU4WjAYMRYwFAYD VQQDEw02OGY0MWQxYS0zMjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7kI4zh/S7YYBaDuNz1J8E0Lo8d3jTdjQhvdASxOph6X2oX6p0xqURZS5+gu2 3jpP2zER/OgyQkbvZuZBhA0Qgny72dKI87EKarZj90XLmjyvF5GkuoMm/wo3aI5R 7xejebtm/4pWxbCnhVCjUtaES0VDREc/ZQ9W/Qbfn+dmGvhi/qWXlhP9dYOhWiMp CWY77lrD6ZGfINW47kHRwmaFgbtIUHJQp+8mUIdPf38KxPKaHXWjaMUgOgnJnc4S wB69n8CekpKpoKY0f9atwAvvsgchYAm6XDuJ831xQwhV2wvq4ZTS904qFv5/Nzg8 i9ndKyEJMUdO38KaKH2DEYbODQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEIhDLxu kkHpWbYHnKH/A+vq1LThMB8GA1UdIwQYMBaAFF6hHIo6KeBpc8HxIWEdWlwqGwad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0Qy81MUE5RUFDQzQx NjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRHbHp3ZkVoWVIxYVhDb2JC cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxRWNpam9wNEdsendmRWhZUjFhWENvYkJwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjU0Qy81MUE5RUFDQzQxNjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRH bHp3ZkVoWVIxYVhDb2JCcDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGd1u8PwW5CZyNF7HtOeKRwXyl7G34ul5a8xPogeoSJT1Kk+FO12oT XapyfmJxOnsJzUjrMQ7HWru0ZTL+L1JGB/UV/60cwsCXgnsNH0JkikTDW3hO9xMc Nd1DXWP3eO83PlPfWXugv7vafrRTnq+OGgbfFp0vTvqT/VIocC+Y0GSkvk0w630i tUrx91ceV2UAQOFeTlGWZkdE4zFWqgkjJgEIqy7jEzu4CjQJPIH3oxr841PskM9h lr3Ngg2w7JVCDkSlhgKMGwjRZzOhtYE123+lupWp6jYX/Wdko7ReZDoY1pZ9y5eS BeuqgwaK6kGmAaxA0pPP1ApY3lKixF+F -----END CERTIFICATE-----Generated at Mon Oct 20 17:05:06 2025 by rpki-client